A method for performing a security login in an electronic device includes accessing, by an electronic device including a communication circuit and a processor, a web page. The method also includes receiving a user input for requesting a login to the web page and receiving first information for the login from the web page. The received first information is transmitted to a payment service provider server and a request for second information for authentication is received from the payment service provider server. The requested second information is transmitted to the payment service provider server and the login to the web page is performed.
Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
1. A method comprising: transmitting, by an electronic device including a communication circuit and a processor, a first request for a subscription of a login service to provide access to a web page using a payment application which is installed on the electronic device to a payment service provider server associated with the payment application, wherein the first request includes user account information of a user to login the web page; in response to an approval from the payment service provider server, receiving, by the electronic device, a payment means and authentication information from the user; transmitting, by the electronic device, the payment means and the authentication information to the payment service provider server; receiving, by the electronic device, a completion result of the subscription of the login service from the payment service provider server; accessing, by the electronic device, the web page through the communication circuit; receiving, by the electronic device, a user input selecting the login service to provide access to the web page; receiving, by the electronic device, from a web-server associated with the web page, first information generated by the web-server for the login service based on the user input; in response to receiving the first information, executing the payment application by the electronic device; transmitting, by the electronic device, the first information, information identifying the electronic device, information of the payment means, and information of the web page to the payment service provider server; receiving subscription information indicating whether the electronic device subscribes for the login service from the payment service provider server, wherein the subscription information is generated by the payment service provider server based on a matched results by matching information of the electronic device, the information of the payment means, the information of the web page, and the user account information; in response to the subscription information indicating that the electronic device is subscribed for the login service, receiving, by the electronic device, a second request for the authentication information from the payment service provider server; receiving, by the electronic device, the authentication information by using the payment application; transmitting, by the electronic device, the authentication information received by the payment application to the payment service provider server; in response to receiving authentication result for the authentication information from the payment service provider server, transmitting a third request to login with the first information to the web-server; and in response to transmitting the third request to login with the first information, accessing the web page.
This invention relates to electronic device authentication and access control, specifically addressing the problem of securely subscribing to and accessing web page login services. The method involves an electronic device, equipped with a communication circuit and processor, initiating a subscription request for a login service. This request is sent to a payment service provider server, utilizing an installed payment application. The request includes user account details for the target web page. Upon receiving approval from the payment server, the device prompts the user for payment means and authentication information. This information is then transmitted back to the payment server. After receiving confirmation of the subscription, the electronic device accesses the web page. When the user selects the login service, the web server provides initial information. The payment application on the device is then executed. The device transmits the initial web page information, device identification, payment details, and web page information to the payment server. The payment server verifies this data against user account information to determine subscription status. If subscribed, the device receives a request for authentication information from the payment server. This authentication information is obtained via the payment application and sent to the payment server. Following successful authentication, the device sends a login request to the web server using the initial information, thereby granting access to the web page.
2. The method of claim 1 , wherein the first information includes transaction information generated by the web-server associated with the web page.
A system and method for processing web-based transactions involves capturing and analyzing transaction information generated by a web server associated with a web page. The method includes receiving transaction data from the web server, where this data pertains to user interactions, such as purchases, form submissions, or other activities conducted on the web page. The system processes this transaction information to extract relevant details, such as transaction identifiers, timestamps, user inputs, or payment details, and may further analyze the data to detect patterns, anomalies, or security threats. The method may also involve storing the transaction information in a database for record-keeping, compliance, or further analysis. Additionally, the system may generate reports or alerts based on the processed transaction data, providing insights into user behavior, system performance, or potential fraud. The method ensures secure and efficient handling of transactional data, enhancing the reliability and transparency of web-based transactions.
3. The method of claim 1 , wherein the payment application transmits to the payment service provider server the first information and information for identifying the user that is associated with the web page.
A method for processing payments in an online environment involves a payment application that facilitates transactions between a user and a merchant. The method addresses the challenge of securely and efficiently transmitting payment information while ensuring the user's identity is verified. The payment application collects payment details, such as credit card information, from the user and transmits this data to a payment service provider server. Additionally, the payment application sends information that identifies the user, which is linked to the web page where the transaction is occurring. This user identification data helps the payment service provider verify the user's identity and authenticate the transaction, reducing fraud risks. The method ensures that payment processing is seamless while maintaining security and accuracy in user verification. The payment service provider server processes the received information to complete the transaction, ensuring that the payment is authorized and the funds are transferred securely. This approach enhances the reliability and trustworthiness of online payment systems by integrating user identification with payment processing.
4. The method of claim 1 , further comprising: receiving a second user input associated with the second request for the authentication information.
A system and method for secure authentication involves a user device receiving a first request for authentication information, such as a password or biometric data, and displaying a prompt to the user. The system then receives a first user input in response to the prompt, which may include a password, PIN, or biometric verification. The system validates the input against stored authentication credentials. If the input is valid, the system grants access to a secure resource, such as an application, account, or device. Additionally, the system may receive a second request for authentication information and a corresponding second user input, allowing for multi-factor or repeated authentication. The method ensures secure access control by verifying user credentials before permitting access to protected resources. The system may be implemented in software, hardware, or a combination thereof, and may be used in various applications requiring secure authentication, such as financial transactions, device unlocking, or access to sensitive data. The method enhances security by requiring multiple authentication steps, reducing the risk of unauthorized access.
5. The method of claim 4 , wherein the authentication information includes a password or biometric information.
Authentication systems and methods for verifying user identity. This invention provides a secure method for authenticating a user accessing a system or service. The authentication process involves presenting specific authentication information. This authentication information can take several forms, including a password, which is a secret string of characters known only to the user, or biometric information, which is unique physical or behavioral characteristic of the user, such as a fingerprint, facial scan, or voice pattern. The system compares the presented authentication information with previously stored or expected information to determine if the user is who they claim to be. This allows for controlled access to sensitive data or functionalities based on verified user identity.
6. The method of claim 4 , further comprising: transmitting, by the payment service provider server, the authentication information to a card issuer server.
A payment processing system involves securely authenticating transactions between a payment service provider and a card issuer. The system addresses the challenge of verifying payment details while maintaining data security and preventing fraud. The method includes receiving authentication information from a merchant server, where this information is generated during a payment transaction. The payment service provider server then processes this authentication data to validate the transaction. Additionally, the system transmits the authentication information to a card issuer server, allowing the issuer to independently verify the transaction details. This step ensures that the card issuer can confirm the legitimacy of the payment request before authorizing it. The method may also involve generating a cryptographic token or using existing authentication protocols to enhance security. By integrating the card issuer into the verification process, the system reduces fraud risks and improves transaction reliability. The overall approach ensures that payment authentication is both secure and efficient, supporting seamless transactions while protecting sensitive financial data.
7. The method of claim 1 , further comprising: registering at least two payment sources in the payment application depending on a domain of the web page.
A system and method for managing payment sources in a payment application based on the domain of a web page. The invention addresses the problem of users needing to manually select or switch between different payment sources when making transactions on different websites, which can be inconvenient and error-prone. The solution involves automatically registering and associating at least two payment sources within the payment application based on the domain of the web page where a transaction is being processed. This allows the payment application to intelligently select the appropriate payment source without requiring user intervention. The payment application may include a user interface for managing payment sources, where users can add, remove, or modify payment sources. The system also includes a payment processing module that communicates with external payment gateways to complete transactions. The automatic registration of payment sources based on domain ensures that the correct payment method is used for each transaction, improving efficiency and reducing errors. The invention may be implemented in web browsers, mobile applications, or other payment processing environments.
8. The method of claim 7 , further comprising: matching the at least two payment sources based on the domain; and registering the at least two payment sources that match.
This invention relates to payment processing systems that manage multiple payment sources for transactions. The problem addressed is the inefficiency and complexity of handling payments from different sources without proper coordination, leading to errors, delays, or failed transactions. The solution involves a method for dynamically matching and registering payment sources based on their domain to ensure seamless and accurate payment processing. The method includes identifying at least two payment sources associated with a transaction. Each payment source is analyzed to determine its domain, which may include factors such as the type of payment (e.g., credit card, digital wallet, bank transfer), the issuing entity, or the transaction context. The payment sources are then matched based on their domain attributes to ensure compatibility and proper routing. Once matched, the payment sources are registered in a system to facilitate coordinated processing, reducing the risk of mismatches or failures during transactions. This approach improves payment reliability and efficiency by ensuring that only compatible payment sources are used together.
9. The method of claim 1 , further comprising: receiving, from the payment service provider server, security information generated by a card issuer server; and after receiving the security information from the payment service provider server, transmitting the security information to the card issuer server.
This invention relates to secure payment processing systems, specifically methods for handling security information between payment service providers and card issuers. The problem addressed is ensuring secure and efficient transmission of security data, such as authentication tokens or cryptographic keys, during payment transactions to prevent fraud and unauthorized access. The method involves a payment service provider server receiving security information from a card issuer server, which may include authentication tokens, encryption keys, or other sensitive data required for transaction validation. The payment service provider then transmits this security information to a merchant server, which processes the payment transaction. After receiving the security information from the payment service provider, the merchant server forwards it to the card issuer server for verification. The card issuer validates the transaction using the received security information, ensuring that the payment is authorized and secure. This process enhances security by ensuring that sensitive data is transmitted through trusted intermediaries, reducing the risk of interception or tampering. The method also improves transaction efficiency by automating the exchange of security information between the involved parties, minimizing delays and errors in payment processing. The system is particularly useful in online or mobile payment environments where secure data transmission is critical.
10. The method of claim 9 , wherein the security information includes temporary card information.
A method for enhancing payment security involves generating and managing temporary card information to prevent unauthorized transactions. The method operates within financial transaction systems where payment cards are used, addressing the risk of fraud or data breaches by providing dynamic, short-lived card details instead of static information. The temporary card information includes details such as a temporary card number, expiration date, or security code, which are valid only for a limited time or specific transactions. This approach reduces exposure of permanent card details, mitigating risks associated with card cloning or unauthorized use. The system dynamically generates and distributes these temporary details to authorized users or devices, ensuring that even if intercepted, the information becomes invalid quickly. The method integrates with existing payment networks and card issuers, allowing seamless use while enhancing security. By replacing static card data with time-limited alternatives, the system provides a robust solution to combat payment fraud and unauthorized access.
11. An electronic device comprising: a communication circuit; a display circuit; a user input circuit; and a processor operably connected with the communication circuit, the display circuit, and the user input circuit, wherein the processor is configured to: transmit a first request for a subscription of a login service to provide access to a web page using a payment application which is installed on the electronic device to a payment service provider server associated with the payment application, wherein the first request includes user account information of a user to login the web page; in response to an approval from the payment service provider server, receive a payment means and authentication information from the user; transmit the payment means and the authentication information to the payment service provider server; receive a completion result of the subscription of the login service from the payment service provider server; access the web page through the communication circuit; display the web page in a screen through the display circuit; receive a user input selecting the login service to provide access to the web page through the user input circuit; receive, from a web-server associated with the web page, first information generated by the web-server for the login service through the communication circuit based on the user input; in response to receiving the first information, execute the payment application; transmit the first information, information identifying the electronic device, information of the payment means, and information of the web page to the payment service provider server; receive subscription information indicating whether the electronic device subscribes for the login service from the payment service provider server, wherein the subscription information is generated by the payment service provider server based on a matched results by matching information of the electronic device, the information of the payment means, the information of the web page, and the user account information; in response to the subscription information indicating that the electronic device is subscribed for the login service, receive a second request for the authentication information from the payment service provider server; receive the authentication information by using the payment application; transmit the authentication information received by the payment application to the payment service provider server; in response to receiving authentication result for the authentication information from the payment service provider server, transmit a third request to login with the first information to the web-server; and in response to transmitting the third request to login with the first information, access the web page.
This invention relates to an electronic device that facilitates secure login to a web page using a payment application installed on the device. The system addresses the problem of managing user authentication and subscription services for web access in a streamlined manner, reducing the need for separate login credentials while leveraging existing payment applications for authentication. The device includes a communication circuit, display circuit, user input circuit, and a processor connected to these components. The processor is configured to transmit a request to a payment service provider server to subscribe to a login service for accessing a web page. This request includes user account information for logging into the web page. Upon approval, the device receives payment means (e.g., payment card details) and authentication information (e.g., biometric or PIN) from the user and forwards them to the payment service provider server. After receiving a subscription confirmation, the device accesses the web page, displays it, and allows the user to select the login service. When the user selects the login service, the device receives login-related information from the web server, executes the payment application, and transmits the login information, device identification, payment means details, and web page information to the payment service provider server. The server verifies the subscription status by matching the device, payment means, web page, and user account information. If subscribed, the device receives a request for authentication information, retrieves it via the payment application, and sends it to the server. Upon successful authentication, the device transmits a login request to the web server and gains access to the web page. This system integrates paym
12. The electronic device of claim 11 , wherein the first information includes transaction information generated by the web-server associated with the web page.
The invention relates to electronic devices configured to process and display web page content, particularly focusing on handling transaction information generated by web servers. The device includes a display for presenting a web page and a processor that receives first information from a web server associated with the web page. This first information includes transaction information, such as payment details, order confirmations, or other transaction-related data generated by the web server. The processor processes this information and may display it on the web page or use it for further actions, such as completing a transaction or updating a user interface. The device may also receive second information from a different source, such as a local application or another server, and combine or compare this with the transaction information to enhance functionality. The processor may execute instructions to manage the display of the web page, ensuring that transaction information is accurately presented and integrated with other content. The invention aims to improve the handling of transaction data in web-based interactions, ensuring seamless and secure processing of sensitive information.
13. The electronic device of claim 11 , wherein the processor is configured to: receive a second user input associated with the second request for the authentication information through the user input circuit.
This invention relates to electronic devices with enhanced authentication systems, particularly for securely managing and retrieving authentication information. The problem addressed is the need for secure and efficient access to authentication credentials, such as passwords or biometric data, in electronic devices. The invention provides a system where a processor in an electronic device receives a first user input requesting authentication information, such as a password or biometric data, and retrieves the requested information from a secure storage module. The processor then displays the retrieved authentication information on a display module. Additionally, the processor receives a second user input associated with a second request for authentication information through a user input circuit, ensuring that the system can handle multiple authentication requests sequentially. The secure storage module stores the authentication information in an encrypted form, and the processor decrypts the information before displaying it. The user input circuit may include a touch-sensitive surface or a physical button, allowing users to interact with the device to request authentication information. The display module presents the retrieved authentication information in a readable format, ensuring users can access their credentials securely and efficiently. This system enhances security by encrypting stored authentication information and provides a user-friendly interface for retrieving credentials when needed.
14. The electronic device of claim 13 , wherein the authentication information includes a password or biometric information.
The invention relates to electronic devices with enhanced security features for user authentication. The problem addressed is the need for secure and convenient authentication methods in electronic devices to prevent unauthorized access while ensuring ease of use for legitimate users. The device includes an authentication module configured to verify user credentials, which may include a password or biometric information such as fingerprints, facial recognition, or other biometric data. The authentication module processes the provided credentials against stored authentication data to determine if access should be granted. If the credentials match, the device allows access to its functions or data; otherwise, access is denied. The system may also include additional security measures, such as multi-factor authentication, to further enhance protection. The invention aims to provide a robust yet user-friendly authentication process for electronic devices, ensuring both security and usability.
15. The electronic device of claim 13 , wherein the processor is configured to: transmit the authentication information to a card issuer server.
The invention relates to electronic devices configured to facilitate secure authentication transactions, particularly in payment systems. The problem addressed is the need for secure and efficient transmission of authentication information between an electronic device and a card issuer server to verify transactions. The electronic device includes a processor and a communication interface. The processor is configured to generate authentication information, such as a cryptographic token or digital signature, to verify the legitimacy of a transaction. This authentication information is then transmitted to a card issuer server via the communication interface. The card issuer server processes the authentication information to confirm the transaction's validity, ensuring secure and authorized payment processing. The device may also include a secure element or trusted execution environment to store sensitive authentication data, such as cryptographic keys or biometric templates, ensuring that the authentication process remains tamper-proof. The communication interface supports secure protocols, such as TLS or tokenization, to protect the authentication information during transmission. The processor may also validate the transaction details before generating the authentication information, ensuring that only legitimate transactions are processed. This invention improves transaction security by ensuring that authentication information is securely generated and transmitted, reducing the risk of fraud or unauthorized access. The system is particularly useful in mobile payment applications, contactless payments, and other digital transaction environments where security is critical.
16. The electronic device of claim 11 , wherein the processor is configured to: receive, from the payment service provider server, security information generated by a card issuer server, by using the communication circuit; and after receiving the security information from the payment service provider server, transmit the security information to the card issuer server.
This invention relates to electronic devices configured to facilitate secure payment transactions by exchanging security information between a payment service provider server and a card issuer server. The problem addressed is the need for secure and efficient communication of security data during payment processing to ensure transaction integrity and fraud prevention. The electronic device includes a processor and a communication circuit. The processor is configured to receive security information from a payment service provider server via the communication circuit. This security information is generated by a card issuer server and relayed through the payment service provider. After receiving the security information, the processor transmits it directly to the card issuer server. This process ensures that sensitive security data, such as authentication tokens or cryptographic keys, is securely exchanged between the involved parties without unnecessary intermediaries, reducing the risk of interception or tampering. The communication circuit enables the electronic device to establish secure connections with both the payment service provider server and the card issuer server, facilitating the seamless transfer of security information. The processor handles the receipt and transmission of this data, ensuring that the payment transaction proceeds with enhanced security and compliance with industry standards. This approach improves the reliability and trustworthiness of digital payment systems by minimizing exposure of sensitive information to potential threats.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
April 21, 2017
February 1, 2022
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.